Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

set user project set user vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2
CVE-2022-24720
image_processing is an image processing wrapper for libvips and ImageMagick/GraphicsMagick. Prior to version 1.12.2, using the `#apply` method from image_processing to apply a series of operations that are coming from unsanitized user input allows the malicious user to execute sh...
Image Processing Project Image ProcessingDebian Debian Linux 11.0
10
CVSSv2
CVE-2011-2921
ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.
Ktsuss Project Ktsuss
10
CVSSv2
CVE-2016-3955
The usbip_recv_xbuff function in drivers/usb/usbip/usbip_common.c in the Linux kernel prior to 4.5.3 allows remote malicious users to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted length value in a USB/IP packet.
Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 15.10Canonical Ubuntu Linux 14.04Linux Linux KernelDebian Debian Linux 8.0
10
CVSSv2
CVE-2010-2521
Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel prior to 2.6.34-rc6 allow remote malicious users to cause a denial of service (panic) or possibly execute arbitrary code via a crafted NFSv4 compound WRITE request, rela...
Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.23.4Linux Linux Kernel 2.6.16.16Linux Linux Kernel 2.6.18.7Linux Linux Kernel 2.6.17.12Linux Linux Kernel 2.6.16.9Linux Linux Kernel 2.6.17.9Linux Linux Kernel 2.6.11.2Linux Linux Kernel 2.6.5Linux Linux Kernel 2.6.15.3Linux Linux Kernel 2.6.11.10Linux Linux Kernel 2.6.1Linux Linux Kernel 2.6.16.6Linux Linux Kernel 2.6.16.8Linux Linux Kernel 2.6.33Linux Linux Kernel 2.6.22.4Linux Linux Kernel 2.6.14.7Linux Linux Kernel 2.6.13Linux Linux Kernel 2.6.17.2Linux Linux Kernel 2.6.13.3Linux Linux Kernel 2.6.11.8Linux Linux Kernel 2.6.23.7
10
CVSSv2
CVE-2009-0773
The JavaScript engine in Mozilla Firefox prior to 3.0.7, Thunderbird prior to 2.0.0.21, and SeaMonkey 1.1.15 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) a splice of an array that contains "some non-set elemen...
Mozilla Firefox 3.0Mozilla Firefox 3.0.1Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.3Mozilla Thunderbird 2.0.0.12Mozilla Thunderbird 2.0.0.9Mozilla Firefox 3.0.2Mozilla Firefox 3.0.3Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.9Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.1Mozilla Thunderbird 2.0.0.6Mozilla Thunderbird 2.0.0.5Mozilla Firefox 2.0.0.17Mozilla Firefox 2.0.0.16Mozilla Firefox 2.0.0.8Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0
10
CVSSv2
CVE-2008-5317
Integer signedness error in the cmsAllocGamma function in src/cmsgamma.c in Little cms color engine (aka lcms) prior to 1.17 allows malicious users to have an unknown impact via a file containing a certain "number of entries" value, which is interpreted improperly, lead...
Littlecms Lcms 1.08Littlecms Lcms 1.07Littlecms Little Cms Color Engine 1.14Littlecms Little Cms Color Engine 1.07Littlecms Little Cms Color Engine 1.15Littlecms Lcms 1.12Littlecms Lcms 1.11Littlecms Little Cms Color Engine 1.11Littlecms Little Cms Color Engine 1.10Littlecms LcmsLittlecms Lcms 1.14Littlecms Lcms 1.13Littlecms Little Cms Color Engine 1.13Littlecms Little Cms Color Engine 1.12Littlecms Lcms 1.15Littlecms Little Cms Color EngineLittlecms Lcms 1.10Littlecms Lcms 1.09Littlecms Little Cms Color Engine 1.09Littlecms Little Cms Color Engine 1.08
10
CVSSv2
CVE-2008-5316
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) prior to 1.16 allows malicious users to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a...
Littlecms Lcms 1.08Littlecms Lcms 1.07Littlecms Lcms 1.10Littlecms Lcms 1.09Littlecms Little Cms Color Engine 1.09Littlecms Little Cms Color Engine 1.08Littlecms Lcms 1.14Littlecms Lcms 1.13Littlecms Little Cms Color Engine 1.14Littlecms Little Cms Color Engine 1.13Littlecms Little Cms Color Engine 1.12Littlecms LcmsLittlecms Lcms 1.12Littlecms Lcms 1.11Littlecms Little Cms Color Engine 1.11Littlecms Little Cms Color Engine 1.10Littlecms Little Cms Color Engine 1.07Littlecms Little Cms Color Engine
10
CVSSv2
CVE-2008-4796
The _httpsrequest function (Snoopy/Snoopy.class.php) in Snoopy 1.2.3 and previous versions, as used in (1) ampache, (2) libphp-snoopy, (3) mahara, (4) mediamate, (5) opendb, (6) pixelpost, and possibly other products, allows remote malicious users to execute arbitrary commands vi...
Snoopy Project SnoopyDebian Debian Linux 4.0Debian Debian Linux 5.0Nagios NagiosWordpress Wordpress
10
CVSSv2
CVE-2008-0960
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x prior to 5.2.4.1, 5.3.x prior to 5.3.2.1, and 5.4.x prior to 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 up to and including 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3R...
Juniper Session And Resource Control 2.0Juniper Src Pe 1.0Juniper Session And Resource Control 1.0Juniper Src Pe 2.0
10
CVSSv2
CVE-2007-6330
Meridian Prolog Manager 2007, and 7.5 and previous versions, sends all usernames and passwords to the client in a (1) cleartext or (2) weakly encrypted format to support client-side login authentication, which makes it easier for remote malicious users to obtain database access b...
Meridian Software Prolog Manager 7.0Meridian Software Prolog Manager 7.5Meridian Software Prolog Manager 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook